projects
/
mailer.git
/ blobdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
raw
|
inline
| side by side
Security line in all includes changed
[mailer.git]
/
inc
/
modules
/
admin
/
action-user.php
diff --git
a/inc/modules/admin/action-user.php
b/inc/modules/admin/action-user.php
index 1d53df9a1367701b74c1b3a4691519d4f39eb71d..1cc7270823b8a34b65b5495eaabc2225baeada78 100644
(file)
--- a/
inc/modules/admin/action-user.php
+++ b/
inc/modules/admin/action-user.php
@@
-32,8
+32,7
@@
************************************************************************/
// Some security stuff...
************************************************************************/
// Some security stuff...
-if ((ereg(basename(__FILE__), $_SERVER['PHP_SELF'])) || (!IS_ADMIN()))
-{
+if ((!defined('__SECURITY')) || (!IS_ADMIN())) {
$INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), "/inc") + 4) . "/security.php";
require($INC);
}
$INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), "/inc") + 4) . "/security.php";
require($INC);
}
@@
-43,14
+42,12
@@
ADD_DESCR("admin", basename(__FILE__));
// Load the include file
$INC = sprintf("%sinc/modules/admin/what-%s.php", PATH, $GLOBALS['what']);
// Load the include file
$INC = sprintf("%sinc/modules/admin/what-%s.php", PATH, $GLOBALS['what']);
-if (file_exists($INC))
-{
+if (FILE_READABLE($INC)) {
// Ok, we finally load the admin action module
include($INC);
// Ok, we finally load the admin action module
include($INC);
-}
- else
-{
+} else {
ADD_FATAL(ADMIN_404_ACTION_1.$GLOBALS['what'].ADMIN_404_ACTION_2);
}
ADD_FATAL(ADMIN_404_ACTION_1.$GLOBALS['what'].ADMIN_404_ACTION_2);
}
+
//
?>
//
?>